Sanofi
pharmaceutical
SegregationofDutiesExpert
“Segregation of Duties Expert at Sanofi. Skills: Segregation of Duties (SOD) policy governance, SAP GRC Access Control implementation and administration, SOX compliance, Financial risk management, Internal Controls framework. Oversee and maintain Sanofi's global Segregation of Duties policy framework. Set up and conduct SOX and CSRR ITAC & ITGC testing”
What You'll Achieve.
Strengthening Sanofi's internal control framework; Ensuring compliance with regulatory requirements and corporate governance standards; Enhance SOD control efficiency and effectiveness
Industry & Context.
Excellent problem-solving capabilities to address SOD conflicts and design effective controls; Data analysis skills to interpret SOD reports, identify patterns, and drive insights; Ability to balance risk management with business operational needs
What They're Looking For.
Must Have
Minimum 5 years of experience in Internal Controls, SOX compliance, or financial risk management, At least 3 years of hands-on experience with Segregation of Duties projects (framework definition and implementation, review of SoD matrix and remediation of risks), Proven experience working with SAP GRC Access Control or similar access governance tools, Demonstrated experience in a multinational corporate environment, preferably in pharmaceutical, healthcare, or highly regulated industries, Experience supporting or working with Global Process Owner organizations or similar governance structures, Deep understanding of Segregation of Duties principles, frameworks, and best practices, Knowledge of financial processes and ability to explain associated risks (Order-to-Cash, Procure-to-Pay, Account-to-Report, etc.), Proficiency in SAP GRC Access Control configuration, rule design, and administration, Familiarity with SAP ERP modules (FI, CO, MM, SD) and their authorization objects, Understanding of SOX compliance requirements and internal control frameworks (COSO, COBIT), Experience with access governance, role-based access control (RBAC), and identity management concepts, Strong analytical skills with ability to assess complex business processes and identify SOD risks, Excellent problem-solving capabilities to address SOD conflicts and design effective controls, Data analysis skills to interpret SOD reports, identify patterns, and drive insights, Ability to balance risk management with business operational needs, Collaborate with Internal Audit, Compliance, IT Security, and business stakeholders on SOD-related matters, Develop and deliver SOD training programs for various audiences (process owners, system administrators, end users), Serve as the escalation point for complex SOD questions and scenarios, Build relationships with regional and functional teams to promote SOD awareness and compliance culture, Must be fluent (written/spoken) in English
Nice to Have
Master's degree in relevant discipline (MBA, MS in Accounting, MS in Information Systems), Certified Internal Auditor (CIA), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), SAP GRC Access Control Certification
What You'll Do.
Oversee and maintain Sanofi's global Segregation of Duties policy framework
Set up and conduct SOX and CSRR ITAC & ITGC testing
Analyze SOC report for in-scope third parties
Conduct testing of High-Risk controls for Digital solutions
Identify optimization & continuous improvement opportunities
Manage and continuously update the global SOD Matrix
Conduct periodic reviews of SOD policies
Ensure SOD policy compliance across all Sanofi entities and business units globally
Develop and maintain SOD control documentation
Serve as the primary business liaison to the Digital team for implementing SOD rules and controls in SAP GRC Access Control
Translate business SOD requirements into technical rule configurations within SAP GRC
and deployment of automated SOD controls in enterprise systems
Validate SOD rule effectiveness and accuracy in system implementations
Troubleshoot SOD-related system issues and provide expert guidance on rule optimization
Participate in system upgrades
and new module implementations
Partner with Global Process Owners (GPOs) to define
and document SOD risks
Facilitate SOD risk workshops and training sessions
Provide expert consultation on SOD risk mitigation strategies
Support GPOs in establishing SOD monitoring procedures and key risk indicators
Assist in the investigation and resolution of SOD conflicts and violations
Develop risk-based approaches to prioritize SOD remediation efforts
Establish and maintain SOD monitoring frameworks and dashboards
Generate regular reports on SOD violations
and control effectiveness
Conduct root cause analysis of recurring SOD issues and recommend sustainable solutions
Drive continuous improvement initiatives to enhance SOD control efficiency and effectiveness
Stay current with industry best practices
and emerging SOD methodologies
How You'll Work.
Team & Collaboration
Close collaboration with Digital teams; Partner with Global Process Owners (GPOs); Collaborate with Internal Audit, Compliance, IT Security, and business stakeholders
Communication Scope
Develop and deliver SOD training programs for various audiences; Serve as the escalation point for complex SOD questions and scenarios; Build relationships with regional and functional teams
Applying for this Segregation of Duties Expert role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
How to Apply on Workday
- Workday has a multi-step form — save your progress after every section.
- "Apply With LinkedIn" can fail or lose data; manual entry is more reliable.
- Watch for the "Submit for Review" final step — hitting "Save" alone does not submit.
- Job requisition numbers are useful when following up with HR by email.
ANONYMOUS · UNFILTERED
What do employees actually say about Sanofi?
Real rants from real employees. Read before you apply.